Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/OrQtgakxIojgZgs2PdRz6pUzF-E.roa
File: OrQtgakxIojgZgs2PdRz6pUzF-E.roa (raw, json)
Hash identifier: znpoOz+Ie2q2fP4XOMLF9NURyIAHOYFrgLS6FMgKsS8=
Subject key identifier: 3A:B4:2D:81:A9:31:22:88:E0:66:0B:36:3D:D4:73:EA:95:33:17:E1
Certificate issuer: /CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Certificate serial: 44D14A86
Authority key identifier: F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/OrQtgakxIojgZgs2PdRz6pUzF-E.roa
Signing time: Sat 01 Jan 2022 14:06:48 +0000
ROA not before: Sat 01 Jan 2022 14:06:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31586
IP address blocks: 185.69.232.0/22 maxlen: 24
185.84.72.0/22 maxlen: 24
185.105.204.0/22 maxlen: 24
141.255.180.0/22 maxlen: 24
185.105.216.0/22 maxlen: 24
2a05:a282::/32 maxlen: 48
2a05:2500::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1154566790 (0x44d14a86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Validity
Not Before: Jan 1 14:06:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ab42d81a9312288e0660b363dd473ea953317e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:81:56:42:fd:74:55:76:ca:98:91:46:9f:36:
51:90:6d:4e:62:46:42:35:56:a8:4f:1b:d3:ab:28:
7b:e5:f0:2d:d6:22:ab:91:10:9f:27:e9:b8:cc:fd:
7d:60:af:8a:6d:bb:0b:b1:e5:8a:84:42:40:14:9e:
2e:1c:6f:da:2b:ce:f8:ad:1c:51:a8:78:a4:95:78:
8b:28:34:6b:2e:d6:c7:0f:b5:86:db:2b:26:31:f5:
04:4e:c8:c0:5a:4f:eb:64:41:c8:04:45:ba:f6:4e:
cf:c0:d1:16:92:33:b3:94:9c:d0:d3:51:93:84:f8:
18:88:d0:d7:92:82:68:3e:fe:b5:8f:7a:08:6b:41:
6c:99:6b:e1:64:e0:5e:d2:88:24:ca:13:80:63:e4:
3e:4e:d9:7e:a1:69:cb:bf:ab:a1:d5:f2:d8:94:34:
cd:e4:77:af:e7:78:41:c8:05:0d:1e:9b:6c:81:a5:
f9:fe:8e:50:89:68:04:ca:8d:c7:65:98:dd:68:9c:
88:a9:3a:0f:03:2d:e1:39:0e:ec:83:7e:8f:aa:11:
ef:52:db:7d:e1:0f:6e:bd:94:c0:fb:f8:77:48:d3:
6b:31:4e:8d:88:84:46:57:6c:8a:4c:0b:8f:45:ac:
28:b5:42:f0:37:f8:26:fe:70:40:2c:56:03:62:cb:
22:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:B4:2D:81:A9:31:22:88:E0:66:0B:36:3D:D4:73:EA:95:33:17:E1
X509v3 Authority Key Identifier:
keyid:F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/OrQtgakxIojgZgs2PdRz6pUzF-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/9RNpzL-GsehOGutG5tM20591Kuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.255.180.0/22
185.69.232.0/22
185.84.72.0/22
185.105.204.0/22
185.105.216.0/22
IPv6:
2a05:2500::/32
2a05:a282::/32
Signature Algorithm: sha256WithRSAEncryption
50:e9:1d:4e:75:d5:23:6e:99:57:ed:b8:d6:91:48:47:36:8a:
ee:f3:44:28:02:4d:35:f4:c8:f8:11:4f:cc:bc:3a:7a:b3:e2:
0b:02:ee:ce:c8:7c:e3:2a:9e:2e:f5:84:7e:98:3e:6b:d3:0d:
e5:8b:57:c8:14:31:7e:a2:d7:32:af:09:85:71:1c:d5:e0:f1:
89:69:05:01:ac:82:d9:18:bf:c3:0d:1e:bd:0d:a3:a7:0d:6f:
89:88:ad:9e:26:06:78:80:f7:df:a0:aa:fd:2c:13:06:8d:f4:
8a:4a:0b:4b:09:b8:1c:8c:1e:fb:5f:bc:16:ed:79:dc:ba:07:
f7:d2:f6:f6:ba:f0:59:d0:03:22:1e:84:43:20:68:18:58:f4:
72:71:36:fe:b6:6a:f9:17:af:09:28:82:07:5c:66:5f:ba:b1:
8a:89:d1:20:4c:b7:f8:99:ed:08:2d:53:f2:8a:7d:8d:df:04:
65:b5:e0:ed:69:55:b2:0b:f3:2e:56:f2:bb:77:66:d4:7d:20:
a2:54:0d:6b:0a:db:93:cc:da:96:4e:64:1a:10:3e:46:44:34:
a6:87:25:32:20:a5:62:2c:b3:3f:a4:88:2a:3c:e2:60:74:24:
56:77:6a:a0:69:f0:8a:9f:1b:2b:e0:72:f7:d9:1f:88:5e:7c:
6f:dd:74:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:04 2024 by rpki-client on console-ams.rpki-client.org